Fix linux-pam

This involves:
* Reordering the chunks linux-pam, acl, attr and libcap2 - this means
  moving them into the 'core' stratum, and fixing errors that occur
  because of the move.
* Configuring pam correctly.
* Fix acl failing to build in core.
* Fix shadow to build against pam and reconfigure shadow to not do
  things covered by pam.
* Fix tar not building - I am not sure what caused this to fail to
  build, but fixing it involved stopping it from trying to init
  submodules that were already checked out.

Change-Id: I1b00ca0158c31ce5f31c11fe60816434508a05a1

1 files changed, 35 insertions, 1 deletions

diff --git a/strata/core/shadow.morph b/strata/core/shadow.morph
index 6887a6b3..d709ddcb 100644
--- a/strata/core/shadow.morph
+++ b/strata/core/shadow.morph
@@ -2,4 +2,38 @@ name: shadow
 kind: chunk
 build-system: autotools
 configure-commands:
-- ./autogen.sh --with-selinux=no --sysconfdir=/etc
+# Installing to /bin so that they overwrite busybox login.
+- |
+  ./autogen.sh --with-selinux=no \
+               --sysconfdir=/etc \
+               --with-pam=yes \
+               --prefix="$PREFIX" \
+               --bindir=/bin
+post-install-commands:
+# Disable things handled by pam instead
+- rm "$DESTDIR/etc/limits"
+- rm "$DESTDIR/etc/login.access"
+- |
+  for OPTION in FAIL_DELAY \
+                FAILLOG_ENAB \
+                LASTLOG_ENAB \
+                MAIL_CHECK_ENAB \
+                OBSCURE_CHECKS_ENAB \
+                PORTTIME_CHECKS_ENAB \
+                QUOTAS_ENAB \
+                CONSOLE MOTD_FILE \
+                FTMP_FILE \
+                NOLOGINS_FILE \
+                ENV_HZ \
+                PASS_MIN_LEN \
+                SU_WHEEL_ONLY \
+                CRACKLIB_DICTPATH \
+                PASS_CHANGE_TRIES \
+                PASS_ALWAYS_WARN \
+                CHFN_AUTH \
+                ENCRYPT_METHOD \
+                ENVIRON_FILE
+  do
+    sed -i "s/^${OPTION}.*/# & #This option is handled by PAM instead./" \
+        "$DESTDIR/etc/login.defs"
+  done